Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/af/8c0c82-1959-41aa-a827-06e864dfe253/1/E7NYQQGRyfUgNxwCd5OIyRsoPcw.roa
File: E7NYQQGRyfUgNxwCd5OIyRsoPcw.roa (raw, json)
Hash identifier: L+fHS9KlmvQvfusxc+NHGsBikpAVwJaGvuCSvbp/HIo=
Subject key identifier: 13:B3:58:41:01:91:C9:F5:20:37:1C:02:77:93:88:C9:1B:28:3D:CC
Certificate issuer: /CN=0bf275af698a207079d9b7d7fcf32815a3f6192d
Certificate serial: 016754CA
Authority key identifier: 0B:F2:75:AF:69:8A:20:70:79:D9:B7:D7:FC:F3:28:15:A3:F6:19:2D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/C_J1r2mKIHB52bfX_PMoFaP2GS0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/af/8c0c82-1959-41aa-a827-06e864dfe253/1/E7NYQQGRyfUgNxwCd5OIyRsoPcw.roa
Signing time: Sat 01 Jan 2022 16:02:37 +0000
ROA not before: Sat 01 Jan 2022 16:02:37 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 61317
IP address blocks: 5.1.40.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 23549130 (0x16754ca)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0bf275af698a207079d9b7d7fcf32815a3f6192d
Validity
Not Before: Jan 1 16:02:37 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=13b358410191c9f520371c02779388c91b283dcc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:a4:37:78:62:4d:a7:5f:d9:02:df:97:b9:a6:
e5:30:56:ac:25:4f:c5:2e:84:ca:51:78:99:2f:9d:
ff:22:4a:64:8a:30:04:1b:f1:62:10:95:c0:88:b5:
68:27:fb:7f:00:11:87:2b:0c:3d:39:d4:82:6e:a3:
1c:73:06:24:61:a2:d1:21:a5:32:4a:d3:1b:e4:e4:
38:fc:7d:81:87:8d:4e:83:ff:cf:c9:01:1f:76:d8:
4c:20:2c:b0:0a:f5:e4:ba:b6:b7:ac:df:9e:fc:0b:
0b:25:f0:b5:ea:ff:5b:cb:b7:18:98:9d:dc:67:73:
54:af:68:11:b1:00:f9:1d:4b:b9:c3:a2:7c:ac:e2:
3d:25:80:51:12:aa:f0:24:be:ad:f9:9d:53:e3:b8:
4a:28:ce:bf:d9:e5:d6:25:94:60:d1:1f:3d:66:c3:
2a:23:ee:4b:d9:8d:a2:ff:69:ad:24:82:45:e9:d9:
bf:fb:76:ee:8b:7c:77:d5:87:cd:2e:b6:d3:c4:f4:
1a:3c:04:15:18:43:79:f6:93:5e:21:9a:34:ca:f5:
3f:53:0a:16:26:8f:00:d4:3a:b3:55:83:36:ba:e5:
82:90:2a:68:ef:58:0d:cb:9a:27:e4:fe:74:fe:e4:
bc:69:d1:b1:4f:76:63:5a:b1:ab:e3:3b:88:c3:45:
c4:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
13:B3:58:41:01:91:C9:F5:20:37:1C:02:77:93:88:C9:1B:28:3D:CC
X509v3 Authority Key Identifier:
keyid:0B:F2:75:AF:69:8A:20:70:79:D9:B7:D7:FC:F3:28:15:A3:F6:19:2D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/C_J1r2mKIHB52bfX_PMoFaP2GS0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/af/8c0c82-1959-41aa-a827-06e864dfe253/1/E7NYQQGRyfUgNxwCd5OIyRsoPcw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/af/8c0c82-1959-41aa-a827-06e864dfe253/1/C_J1r2mKIHB52bfX_PMoFaP2GS0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.1.40.0/24
Signature Algorithm: sha256WithRSAEncryption
50:13:39:f7:4e:df:61:31:0a:8b:ba:ee:78:15:e4:c7:07:a6:
3e:06:ef:3e:dc:e2:79:a8:f8:fc:8f:e4:05:14:3f:29:32:74:
6e:68:45:02:a5:b4:70:4d:5d:e2:fd:49:06:6b:e0:4f:34:99:
2f:c9:64:af:2e:cf:ac:67:cf:b1:4d:3c:92:fc:56:85:16:96:
37:78:fd:8d:2c:94:ca:d8:8f:fb:70:fa:d6:7d:89:83:fd:15:
bb:5b:43:17:6b:8d:22:3f:2e:44:00:94:73:d5:62:7b:98:45:
cd:47:1b:26:18:d1:80:ef:fd:2c:59:7e:89:df:d7:1f:34:f5:
a0:5d:8d:6e:92:d2:06:b4:46:f9:be:6e:ac:67:79:0b:6e:d2:
57:f1:69:86:d5:5e:64:fc:cd:44:d2:c5:93:0e:dc:1c:3a:13:
ec:bc:44:6e:d3:73:a7:8d:fc:b9:c3:f0:85:03:8c:f9:56:a3:
f4:36:8a:f4:83:55:2d:e9:87:36:30:67:3a:7c:fc:12:f7:70:
70:bf:f4:a4:c7:f8:e1:ea:d2:e2:63:ce:9b:ca:b0:bf:6c:71:
6e:62:c6:65:49:30:81:85:b8:f6:50:eb:87:a6:69:80:fd:8d:
19:00:5b:99:36:b0:ad:e8:94:b9:fc:d3:3f:82:90:a9:74:cd:
f6:34:1d:17
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:17:03 2025 by rpki-client